[
https://issues.apache.org/jira/browse/HADOOP-7119?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12988150#action_12988150
]
Jakob Homan commented on HADOOP-7119:
-------------------------------------
Is there a reason you're not going with the hadoop.http.filter.initializers
configuration parameter designed for pluggable authentication? Hadoop already
has this capability via this parameter and, having implemented it to use one
company's SSO solution, it worked quite well.
> add Kerberos HTTP SPNEGO authentication support to Hadoop JT/NN/DN/TT
> web-consoles
> ----------------------------------------------------------------------------------
>
> Key: HADOOP-7119
> URL: https://issues.apache.org/jira/browse/HADOOP-7119
> Project: Hadoop Common
> Issue Type: New Feature
> Components: security
> Environment: all
> Reporter: Alejandro Abdelnur
> Assignee: Alejandro Abdelnur
> Attachments: ha-commons.patch
>
>
> Currently the JT/NN/DN/TT web-consoles don't support any form of
> authentication.
> Hadoop RPC API already supports Kerberos authentication.
> Kerberos enables single sign-on.
> Popular browsers (Firefox and Internet Explorer) have support for Kerberos
> HTTP SPNEGO.
> Adding support for Kerberos HTTP SPNEGO to Hadoop web consoles would provide
> a unified authentication mechanism and single sign-on for Hadoop web UI and
> Hadoop RPC.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
